OsVault/npm/@feathersjs/authentication-oauth
npm

@feathersjs/authentication-oauth

4 known vulnerabilities · 0 critical · 0 high

CVE-2026-27191

Feathers has an open redirect in OAuth callback enables account takeover

Published Feb 19, 2026
CVE-2026-27193

Feathers exposes internal headers via unencrypted session cookie

Published Feb 19, 2026
CVE-2026-27192

Feathers has an origin validation bypass via prefix matching

Published Feb 19, 2026
CVE-2026-29792

Feathers has an OAuth Callback Account Takeover issue

Published Mar 10, 2026
Check your entire dependency tree at onceRun dependency scan →